Monitor vulnerabilities that affect your stack.
Sign up free to get alerts when software you use is affected.
CVE Vulnerabilities - 9 March 2026
RSS257 vulnerabilities published on 9 March 2026
Severity:
PostgreSQL Security Update Fixes Critical Flaws
ALSA-2026:4024
PostgreSQL is an advanced object-relational database management system (DBMS).
Security Fix(es):
* postgresql: PostgreSQL missing validation o...
Apache ZooKeeper: Attackers can impersonate servers with fake certificate
UBUNTU-CVE-2026-24281
Hostname verification in Apache ZooKeeper ZKTrustManager falls back to reverse DNS (PTR) when IP SAN validation fails, allowing attackers who control ...
rclone on openSUSE Tumbleweed: Potential Data Exposure and Unauthorized Access
openSUSE-SU-2026:10313-1
These are all security issues fixed in the rclone-1.73.2-1.1 package on the GA media of openSUSE Tumbleweed....
Directory listing on Unix platforms may reveal outside files
UBUNTU-CVE-2026-27139
On Unix platforms, when listing the contents of a directory using File.ReadDir or File.Readdir the returned FileInfo could reference a file outside of...
Apache HTTP Server Remote Code Execution Vulnerability
UBUNTU-CVE-2026-3633
[Unknown description]...
GNU Binutils readelf crashes when processing malformed ELF files
UBUNTU-CVE-2025-69650
GNU Binutils thru 2.46 readelf contains a double free vulnerability when processing a crafted ELF binary with malformed relocation data. During GOT re...
GNU Binutils readelf can crash when processing malformed ELF files
UBUNTU-CVE-2025-69649
GNU Binutils thru 2.46 readelf contains a null pointer dereference vulnerability when processing a crafted ELF binary with malformed header fields. Du...